Security Advisory

CVE-2023-3439

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-06-28 00:00:00

Last updated 2025-03-10 21:08:54

Assigner fedora

State PUBLISHED

Description

A flaw was found in the MCTP protocol in the Linux kernel. The function mctp_unregister() reclaims the devices relevant resource when a netcard detaches. However, a running routine may be unaware of this and cause the use-after-free of the mdev->addrs object, potentially leading to a denial of service.

← Browse all CVEs View on cve.org ↗